Index: curl-8.0.1/lib/vtls/openssl.c
===================================================================
--- curl-8.0.1.orig/lib/vtls/openssl.c
+++ curl-8.0.1/lib/vtls/openssl.c
@@ -235,7 +235,7 @@
 /* up2date versions of OpenSSL maintain reasonably secure defaults without
  * breaking compatibility, so it is better not to override the defaults in curl
  */
-#define DEFAULT_CIPHER_SELECTION NULL
+#define DEFAULT_CIPHER_SELECTION "DEFAULT_SUSE"
 #else
 /* ... but it is not the case with old versions of OpenSSL */
 #define DEFAULT_CIPHER_SELECTION \
@@ -3607,8 +3607,18 @@ static CURLcode ossl_connect_step1(struc
     ciphers = (char *)DEFAULT_CIPHER_SELECTION;
   if(ciphers) {
     if(!SSL_CTX_set_cipher_list(backend->ctx, ciphers)) {
-      failf(data, "failed setting cipher list: %s", ciphers);
-      return CURLE_SSL_CIPHER;
+      if(!strcmp(ciphers, "DEFAULT_SUSE")) {
+        infof(data, "cipher list %s not available, using %s\n", "DEFAULT_SUSE", "HIGH");
+        if(!SSL_CTX_set_cipher_list(backend->ctx, "HIGH")) {
+          failf(data, "failed setting cipher list: %s, setting cipher list %s also failed",
+                      "DEFAULT_SUSE", "HIGH");
+          return CURLE_SSL_CIPHER;
+        }
+      }
+      else {
+        failf(data, "failed setting cipher list: %s", ciphers);
+        return CURLE_SSL_CIPHER;
+      }
     }
     infof(data, "Cipher selection: %s", ciphers);
   }